Privacy Policy

Register owner / Data controller

MovED / Voices For Freedom Ry. (Business ID 3350143-4)

c/o Innovation Home, Kansakoulukatu 3, 00100 Helsinki, Finland

Contact person

Elsa Levo

Name of the register

MovED / Voices For Freedom register for events & marketing & members

Purpose and legal basis of personal data processing

Personal data is processed for the implementation of the contract between the Register owner and the data subject and, where applicable, on the basis of the consent given by the data subject, in connection with and enabling orders, registrations, contacts, transactions, marketing, reporting and other measures related to customer management.

Purchase and transaction data and location data processed in the register can also be used for profiling and targeting marketing measures and customer communications to be of interest to the registrant. Personal data is also processed in connection with sending the newsletter, participating in events and other marketing measures.

If the data subject does not provide the requested information to the extent that the information is related to registration for the event, the Register owner cannot accept the registration of the data subject nor make them commit to the agreement between the data controller and the data subject regarding participation in the event.

Personal data retention period

Personal data will be stored as long as necessary to enable the registrant’s registration and the related event. In addition, the data is stored for one year. The data will be deleted when the storage period defined above has expired.

The register’s personal groups and data content and personal data groups

The groups of people whose data can be processed are participants in an event organized by the Data controller, or those who have given marketing permission.

The register can process, among other things, the first and last name of the registrant registered for the event, as well as possible contact information and necessary information given in connection with the event. Registration information for the event entered by the registrant himself may include e.g. the following information: e-mail, phone number, address, date of birth, or allergy information.

Regular sources of information

Information provided by the participant, customer information system and invoicing database.

Regular data transfers

Register data can be shared within the organization, as well as among the stakeholders of the event. In addition, the register data is transferred to the specified personal data processor. Data is not transferred outside the EU or EEA

Principles of registry protection

Information is stored technically protected. Physical access to data is prevented by means of access control and other security measures. Access to information requires sufficient rights and multi-step identification. Unauthorized access is also prevented by e.g. With the help of firewalls and technical protection. Only the data controller and specially designated technical persons can access the register data. Only named persons have the right to process and maintain the data in the register. Users are bound by a duty of confidentiality. The registry data is securely backed up and can be restored if necessary. The level of information security is audited at frequent intervals either by external or internal auditing.

Rights of the registrant

A person in the register has the right, among other things:

  • request from the Controller access to the personal data concerning him/her and the right to request the correction or deletion of the data in question or to limit the processing or to object to the processing and the right to transfer the data from one system to another;
  • check and, if necessary, have the information about him/her corrected in the register. The request must be made in writing to the keeper of the register. The person in the register has the right to changes in the information that has been incorrectly entered in the register
  • to the extent that the processing of personal data is based on the data subject’s consent, the right to withdraw consent at any time without affecting the legality of the processing carried out on the basis of consent before its withdrawal
  • file a complaint about the processing of personal data to the supervisory authority.